ISO/IEC 27001:2013

Information technology — Security techniques — Information security management systems — Requirements

WITHDRAWN

Languages: Arabic, English and French
Type: International Organization for Standardization (ISO)
Standards committee: ISO/IEC JTC 1/SC 27 (Information security, cybersecurity and privacy protection)
Status: WITHDRAWN
Publication date: 25 September 2013
Replaces: ISO/IEC 27001:2005
Replaced by: ISO/IEC 27001:2022
Amended By: ISO/IEC 27001:2013/DAmd 1
Corrected By: ISO/IEC 27001:2013/Cor 1:2014 ISO/IEC 27001:2013/Cor 2:2015
ICS Code: 03.100.70 (Management systems)
35.030 (IT Security)
Withdrawn Date
Price: € 68,25

ISO/ IEC 27001:2013 specifies the requirements for establishing, implementing, maintaining and continually improving an information security management system within the context of the organization. It also includes requirements for the assessment and treatment of information security risks tailored to the needs of the organization. The requirements set out in ISO/ IEC 27001:2013 are generic and are intended to be applicable to all organizations, regardless of type, size or nature.

ISO/IEC 27001:2013

About this standard

About this training

Summary

Already available in your standards collection

Pending approval

Add standard to standards collection

In shopping basket

Add standard to shopping basket